Firewalla Gold vs EnvisaLink board

Follow

M3

• December 24, 2021 00:55

I recently upgraded to Gold. For the most part things are going smooth, but I am chasing some gremlins. One such gremlin is my EnvisaLink board. This is an interface to  a home alarm system. It stays connected to the "home office" and, among other things, alerts me when contact is lost (i.e. internet or power is out). This has been working for years without an issue. Since upgrade to Gold, however, I am getting alerts that it is offline for sometimes hours at a time - there are 16 alerts in the last 24 hours alone.  I am not seeing any blocked connections - and even tried to set the device as unmonitored - nevertheless,  it keeps happening. Any ideas what is happening?

Summary:

* It is a wired device.

* It seems to talk to a specific DNS name on a specific UDP port. (at least that is what the "flows" say)

* Looking at the "flows" history it shows a single "flow" that says 17 "flows" once opened (???) . Given the correlation to 16 disconnects - perhaps, each is a session that was interrupted, but all are listed with a single timestamp, so it is impossible to know if this is the case. 

* There are no rules for this device. I tried moving it to different device group or even disabling monitoring - no difference

* This started within an hour of upgrading to Gold - so I am relatively sure there is a connection

 

 

0

• 

  Firewalla

  • December 24, 2021 01:15

  Is the alert from Firewalla or the alert from your EnvisaLink saying the network is off?

  0

  Comment actions Permalink
• 

  M3

  • December 24, 2021 01:30

  The alert is from the service it is connecting to, not Firewalla. The device shows as "online" in the Firewalla app - I just added "Notify me when online/offline" - but no data on that yet

  0

  Comment actions Permalink
• 

  Firewalla

  • December 24, 2021 01:35

  I am reading this adapter is 100mbit interface; how it is connected to your network? before and after installing the Gold? Also, tap on devices, find this device and then turn on emergency mode, see if this make things better

  0

  Comment actions Permalink
• 

  M3

  • December 24, 2021 02:21

  I have not changed my network much, just replaced google wifi with firewalla, with firewalla taking over my old subnet and Google Wifi getting a new one (as per instructions) . The device was still setup same as before:
  
  Envisalink -> dumb switch -> managed switch -> firewalla
  
  Since then I reset the Envisalink (that should put it in DHCP mode) and removed the dumb switch (connecting directly into the managed switch). The managed switch sees its mac address on the right port and negotiated 100Mbit full duplex connection - but it does not appear the device is getting an IP from Firewalla - (even though I have it reserved) - Would be nice if there were some logs or something, but i cant find them in Firewalla :-(

   

  0

  Comment actions Permalink
• 

  M3

  • December 24, 2021 03:08

  Discovered ssh access - nice!!

  Using tcpdump, I am seeing a ton of DHCP/BootP requests  from Envisalink ... and no responses - it is weird

  0

  Comment actions Permalink
• 

  Firewalla

  • December 24, 2021 05:35

  Do you happen to have another Wifi access point (old router ... that can do bridge/AP mode?)? if you do, connect Envisalink to this and see if it still has issues.

  0

  Comment actions Permalink
• 

  M3

  • December 24, 2021 06:00

  Well, I am starting to feel like it is a DHCP issue. Looking at the tcpdump it looks like Google Wifi and Firewalla are duking it out - even though Google Wifi does not have any IPs to issue . I see a ton of "gwifi_rouge_dhcp_detection", "wrong server-ID", AND "wrong network" DHCP broadcasts.   

  I switched the EnvisaLink to a static IP and it seems to have  stopped having issues (too soon to tell if it is permanent, but it feels much more stable) Not sure why this affects specifically this device, but I have not seen major issues with other devices (yet)

  0

  Comment actions Permalink
• 

  Firewalla

  • December 24, 2021 07:15

  Okay, that's a good solution, please let us know if it works. 

  I assume you don't have problems with other devices on your network?

  0

  Comment actions Permalink

Please sign in to leave a comment.